General
-
Target
c9.dll
-
Size
163KB
-
Sample
211007-raf69scgaq
-
MD5
c9cd971a083303b1b7c4c912f8739f6b
-
SHA1
25fc199dbb5a7c0a71dfa8f430d8f09d09c0326d
-
SHA256
96defacb7096fc81b809c4b0e427399cb2f7da2fb7eb278dd676785a8a476181
-
SHA512
299645fd8262496396685707da2694ba04d1d20d747a8d6f1874b0a105599736b450f66966fda3333a1006d38a6c02ce03e211dab2ec8d5b1b1be4eacca227f0
Static task
static1
Behavioral task
behavioral1
Sample
c9.dll
Resource
win7-en-20210920
Malware Config
Extracted
gozi_ifsb
3300
api10.laptok.at/api1
golang.feel500.at/api1
go.in100k.at/api1
-
build
250171
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
730
Targets
-
-
Target
c9.dll
-
Size
163KB
-
MD5
c9cd971a083303b1b7c4c912f8739f6b
-
SHA1
25fc199dbb5a7c0a71dfa8f430d8f09d09c0326d
-
SHA256
96defacb7096fc81b809c4b0e427399cb2f7da2fb7eb278dd676785a8a476181
-
SHA512
299645fd8262496396685707da2694ba04d1d20d747a8d6f1874b0a105599736b450f66966fda3333a1006d38a6c02ce03e211dab2ec8d5b1b1be4eacca227f0
-